8758433075dc9a11296e74a4c4cc84f4fc8b18b3c91f5488a134e311bc450eac

General

Target

8758433075dc9a11296e74a4c4cc84f4fc8b18b3c91f5488a134e311bc450eac
Size

68KB
MD5

d1ecc6088179c88b6536a0c161763191
SHA1

89ee458680521366f799c0b4ff317fef69f33959
SHA256

8758433075dc9a11296e74a4c4cc84f4fc8b18b3c91f5488a134e311bc450eac
SHA512

042105248c0921164dc51922a955219072d8b907bca0650cae19e67d5e87aaecd3b4854e579b7dbac02dbcac84ae8284fba618296e14110e432063a03fea4489
SSDEEP

1536:yGOG4wgKOLyGLEk17KShrmS9+eXUNYxoxO7+:yGvvsJAeXti++

Score

1^/10

Malware Config

Signatures

Files

8758433075dc9a11296e74a4c4cc84f4fc8b18b3c91f5488a134e311bc450eac
.dll windows x86

e8b894b9995d62003487e4b065ae3ee9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
CreateToolhelp32Snapshot
WideCharToMultiByte
GetProcessHeap
GetModuleHandleA
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
GetModuleFileNameA
DeleteFileA
CloseHandle
ReadFile
GetFileSize
CreateFileA
FindNextFileA
FindFirstFileA
FindClose
WriteFile
WaitForSingleObject
CreateProcessA
GetStartupInfoA
GetTickCount
FreeLibrary
GetProcAddress
LoadLibraryA
LCMapStringA

wininet

InternetConnectA
HttpOpenRequestA
InternetSetOptionA
HttpSendRequestA
InternetReadFile
InternetOpenA
InternetCloseHandle

msvcrt

__CxxFrameHandler
_stricmp
strncmp
memmove
modf
??3@YAXPAX@Z
atoi
_ftol
sprintf
free
malloc
_CIfmod
rand
srand
strchr
realloc

user32

MessageBoxA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
wsprintfA

Exports

Exports

DriverProc
midMessage
modMessage
mxdMessage
widMessage
wodMessage

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8b894b9995d62003487e4b065ae3ee9

Headers

File Characteristics

Imports

kernel32

wininet

msvcrt

user32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 52KB

.rsrc Size: 4KB - Virtual size: 656B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 52KB

.rsrc
Size: 4KB - Virtual size: 656B

.reloc
Size: 4KB - Virtual size: 1KB